Static task
static1
Behavioral task
behavioral1
Sample
df5477afc4b53d80e880b326d5f7d1928e8953e55181a4bb3cc21f3db3e53068.exe
Resource
win7-20220812-en
General
-
Target
df5477afc4b53d80e880b326d5f7d1928e8953e55181a4bb3cc21f3db3e53068
-
Size
43KB
-
MD5
0ac9027b8ebbce878cf7d9b710461497
-
SHA1
0878ef343826fd2a22b550134c8de8fe28cb77a1
-
SHA256
df5477afc4b53d80e880b326d5f7d1928e8953e55181a4bb3cc21f3db3e53068
-
SHA512
7c73bbb7454d0980d27f3681f068e2dad038b30ac0b9a9b630dedf0ce36415e5ce5b8186024a91760f84b2481976c5872a02f7cb0b3180274f80369dd0a457b2
-
SSDEEP
768:a6m4s6PLT7Sytk1KN8xw/yYvrwWFOuxbFYqzCUViRcyEWpjb:a6dT7SGk1KFaWhzCmitEWpv
Malware Config
Signatures
Files
-
df5477afc4b53d80e880b326d5f7d1928e8953e55181a4bb3cc21f3db3e53068.exe windows x86
2dd1000afc5c35df9021ccf2d340b6eb
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_NO_SEH
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
msvcrt
swprintf
memmove
_purecall
wcscpy
_onexit
_c_exit
wcsncpy
_wcsnicmp
_ftol
_except_handler3
version
GetFileVersionInfoW
GetFileVersionInfoA
GetFileVersionInfoSizeA
advapi32
RegOpenKeyExA
RegDeleteKeyW
RegSetValueExW
RegEnumValueW
RegCloseKey
RegOpenKeyW
RegSetValueExA
RegDeleteValueW
SetSecurityDescriptorDacl
RegQueryInfoKeyW
RegQueryValueExA
RegQueryValueExW
RegOpenKeyExW
gdi32
GetObjectA
CreateRectRgn
SetMetaRgn
GetClipBox
GetPaletteEntries
CreateFontIndirectW
kernel32
HeapAlloc
GetVersion
GetCurrentThread
GetModuleFileNameA
QueryPerformanceCounter
CreateEventW
GetModuleHandleA
VirtualAlloc
VirtualFree
GetCommandLineA
ExitProcess
GetCurrentProcess
InterlockedExchange
GetCurrentProcessId
GetProcAddress
InitializeCriticalSection
UnhandledExceptionFilter
SetLastError
LoadLibraryW
lstrlenW
GetProcessHeap
InterlockedCompareExchange
LeaveCriticalSection
GetSystemTimeAsFileTime
GetTickCount
Sections
.text Size: 9KB - Virtual size: 9KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.data Size: 5KB - Virtual size: 6KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.idata Size: 14KB - Virtual size: 44KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.idata Size: 12KB - Virtual size: 19KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 2KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ